Apple web server security acknowledgements, 2017-2018

Apple publishes this article to acknowledge and thank those who reported potential security issues in our web servers. Credit is added after the issue has been identified and addressed.

For credits from other years, see the end of this article. You can also view recent Apple web server security acknowledgements.

Credits

December 2018

  • Maksym Kraynyuk

  • Micheal Cottingham

  • Robert Wiggins

November 2018

  • Ariel Carbonaro (@SirKuryaki)

  • B.Dhiyaneshwaran of Geek Freak (Tamilnadu)

  • Cem Onat Karagun of Threat and Vulnerability Management Team of IBTech

  • Gocha Okradze

  • Honc 章哲瑜 (@honcbb)

  • Jacob Greenfield

  • João Pimenta

  • Michael Mattioli

  • Pethuraj M

  • Sumit Sahoo

  • Yakup Yücel

October 2018

  • Akityo of Topsec (Zhiqiang Li)

  • Gareth Bryan

  • Raviteja Marella

  • Yiğit Can YILMAZ (@yilmazcanyigit)

September 2018

  • Edison He (@0xedison)

  • Egor Saltykov (@ansjdnakjdnajkd) of Digital Security

  • François Gaudreault

  • Léandre Forget-Besnard

  • Man Shum

  • Marc-Etienne M.Léveillé of ESET

  • Mikail Tunç (@emtunc)

  • Mohan Kallepalli (@MohanKallepalli)

  • Nishaanth Guna of Appknox (@67616d654661636)

  • Rajanish Pathak (@h4ckologic)

  • Tim Leung (@strayapanda)

  • U.Kiran vas Reddy

August 2018

  • Aaron Ghirardelli

  • Adesh Nandkishor Kolte of Independent Security Researcher, India (@AdeshKolte)

  • Agametov Rustam (@AgametovRustam)

  • Aryan Sinha

  • Berk İmran (@berk_imran)

  • Leonid Hartmann (@_harleo)

  • Numan Türle (@numanturle)

  • Ramy Khuffash of Page Flows

  • Tyler Hawkins

  • Wai Yan Aung (@waiyanaun9)

  • Yiğit Can YILMAZ (@yilmazcanyigit)

July 2018

  • Alexandr Evstigneev (@sab0tag3d)

  • Anil Tom

  • Belov Sergey (@kaimi_ru)

  • Blake Rand of Grandview Preparatory School

  • Ilia Bulatov (@barracud4_)

  • Jaikishan Tulswani (@_iamjk)

June 2018

  • Anas Mahmood (@CyberTiger)

  • Anil Tom

  • Belov Sergey (@kaimi_ru)

  • Chinmay Patel (@Chinmay_228)

  • Ismail Tasdelen

  • João Filho Matos Figueiredo (@joaomatosf)

  • Jonathan Bouman

  • Paul Seekamp

  • Shubham Maheshwari

May 2018

  • Abdelfattah Ibrahim of Chaintroopers

  • Sam Eizad of Certezza

  • Tsubasa Iinuma of Gehirn Inc.

April 2018

  • Abhishek Sidharth

  • EA Akalanka Ekanayake

  • Havoc Guhan (குகன் ராஜா) of தமிழ் பசங்க ஹேக்கர்ஸ்

  • Kotaro Hikita (@KotaroHikita)

  • Mikhail Klyuchnikov (Positive Technologies)

  • Monika Talekar

  • Ravikumar Ulchala

  • Umesh P Jore

March 2018

  • @Timedout of Moresec Security Team

  • Faiz Ahmed Zaidi Url of Provensec LLC

  • Rumak Ivan

  • Tansel ÇETİN

  • Vyshnav N K of Kerala

February 2018

  • Alexey Dorogin (@travgen)

  • Ayoub AIT ELMOKHTAR (@aessadek)

  • Deepak Holani of Jaipur Engineering College and Research Centre

  • John Daniel of Etresoft, Inc.

  • KirtiKumar Anandrao Ramchandani

  • Nick Kelley

January 2018

  • Ali Wamim Khan (@WamimKhan)

  • Florian Kiersch of ERNW GmbH (@fkp42k)

  • Lewis Ardern (@LewisArdern)

  • Michael F (@TsundereDwarf)

  • Miku T

  • Morgan S (@14160)

December 2017

  • Ahmed atef abdou of AAA

  • Anas Mahmood (@CyberTiger)

  • CongRong (@Tr3jer) and Kravchenko Stas (@zuh4n)

  • Juba Baghdad (@JubaBaghdad)

  • Rony Gigi

  • Steven Hampton (@Keritzy)

  • Tansel ÇETİN

  • Yongjin Kim (adm1nkyj)

November 2017

  • Annybell Villarroel (@Annyv2) of Auth0

  • Charles Truluck of Porter-Gaud School

  • Stephen Binns and Garry Shutler of Cronofy

October 2017

  • Hsu Myat Noe (@hsumyatno3)

  • Wai Yan Aung (@waiyanaun9)

  • Yeasir Arafat

September 2017

  • Faid Mohammed Amine (@b4ckDo0r3d) of University specialized in IT Development

  • Pal Patel

  • Sagar Bhavar (@sagarbhavar)

  • Sarankumar VB

August 2017

  • Akbar kp of Aforecybersec

  • Anas Mahmood (@AnasIsHere)

  • Cem Onat Karagun of the I.T. Department of University of Kocaeli

  • Chris Chan of VXRL

  • Corben Leo

  • Guifre Ruiz

  • Harnoorpreet Singh of Nihal Singh Wala

  • Josh English (@joshenglish) of ProcessOut

  • Manuel Huez of ProcessOut

  • Moamen Basel (@momenbassel)

  • Raviraj Hariba Shedage

  • Taha Smily (@TahakhanTaha)

  • Wai Yan Aung (@waiyanaun9)

  • Yongjin Kim (adm1nkyj)

July 2017

  • Fredrik Nordberg Almroth

  • Kamil Sevi (@kamilsevi)

  • Kiyong Kwak (part23)

  • Marc Castejon of Silent Breach Inc.

  • Sven Soltermann

  • William Entriken (@fulldecent)

June 2017

  • Ala Arfaoui

  • Gareth Bryan

  • Vedachala

May 2017

  • Adrien Paulet of Rbcafe

  • Blake Rand of Grandview Preparatory School

  • Daniel Compton

  • Micheal Cottingham

  • Mohammed Israil

  • Musab Alhussein

  • Richard Alviarez (@queseguridad)

  • Richard Shupak

  • Sadik Shaikh

  • Seyed Morteza Haghiralsadat of CERT Lab of Ferdowsi University of Mashhad

  • Wai Yan Aung (@waiyanaun9)

April 2017

  • @Timedout of Moresec Security Team

  • Alec Blance

  • Edwin Foudil

  • Emre KOSEOGLU

  • Joel Ahlstedt (@jolle)

  • Kravchenko Stas (@zuh4n)

  • Luke McInerney

  • MD. Toufique Imam Chowdhury

  • Mike Pieters of bitsense

  • Mustafa Hasan (@strukt93) of Netsparker

  • Sam Edward Gaikwad

  • Vipin Chaudhary (@vipinxsec)

  • Yoni Ramon of Tesla

March 2017

  • 4ft35t

  • Abdel Hafid Ait Chikh (@hafidaitchik)

  • Ajay S. Kulal (@ajay_kulal)

  • Akshay Jain

  • Amol Bhure

  • Bharath Kumar

  • Christian Goldbach

  • Daniyal Nasir

  • Eusebiu Blindu (@testalways)

  • Gerardo Venegas (@v0raz)

  • IVAN DANILOV

  • Jose Carlos Exposito Bueno

  • Joseph Jose (@josephjose_96)

  • Jubaer Al Nazi of ServerGhosts Bangladesh

  • Juhani Hautala

  • Kunal Khubchandani (@__kun4l__)

  • Mohammed Abdul Raheem

  • Muhammad Khizer Javed

  • Muhammad Uwais (@Muhd_Uwais_)

  • Muhammad Zeeshan

  • Nike.Zheng of Webin security lab (dbapp security Ltd.)

  • Nurullah Demir

  • Owen Pragel

  • Richard Shupak

  • Sajjad Pourali

  • Seth Vargo (@sethvargo) of HashiCorp

  • Seyed Morteza Haghiralsadat

  • silence (@silence_darker)

  • Terry Zhang

  • Vladimir Dimitrijevski

  • YongShao - zhiyong Feng of JDSEC

  • Yulu

  • Zain Amro

  • Zhaohuan of Tencent Security Platform

February 2017

  • AbedAlqader Swedan

  • Abhishek Shroti (@Fake_Politics)

  • Ahsan Tahir (@AhsanTahirAT)

  • Ajay S. Kulal (@ajay_kulal) of Dr. Homi Bhabha Vidyalaya, Tarapur

  • Ashutosh Kumar (@divashutosh)

  • Callum Carney

  • Hussain Adnan Hashim (@hussain_0x3c)

  • Jayson Vasquez Rubio of Iloilo Science and Technology University, ISAT-U

  • Kieran Claessens of Howest

  • Mustafa Hasan (strukt)

  • Rahmat Nurfauzi

  • Sadik Shaikh

  • Viral Maniar (@maniarviral)

  • Vishal Shukla (@shukla304)

January 2017

  • Anas Roubi (@Qasuar)

  • Rahul Dattatraya Kankrale of Servicenger

  • Sergey Bobrov (@Black2Fan)

  • Seyed Morteza Haghiralsadat, CERT LAB Ferdowsi University of Mashhad, Iran.

  • Vignesh.v

Apple web server security acknowledgements by year

Information about products not manufactured by Apple, or independent websites not controlled or tested by Apple, is provided without recommendation or endorsement. Apple assumes no responsibility with regard to the selection, performance, or use of third-party websites or products. Apple makes no representations regarding third-party website accuracy or reliability. Contact the vendor for additional information.

Date de publication: